Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
intelIntel Security CenterINTEL:INTEL-SA-00462
HistoryFeb 09, 2021 - 12:00 a.m.

Intel® Ethernet E810 Adapter Driver Advisory

2021-02-0900:00:00
Intel Security Center
www.intel.com
67
JSON

Summary:

Potential security vulnerabilities in some Intel® Ethernet E810 Adapter Drivers for Linux and Windows* may allow denial of service or information disclosure.** **Intel is releasing driver updates to mitigate these potential vulnerabilities.

Vulnerability Details:

CVEID: CVE-2020-24504

Description: Uncontrolled resource consumption in some Intel® Ethernet E810 Adapter drivers for Linux before version 1.0.4 may allow an authenticated user to potentially enable denial of service via local access.

CVSS Base Score: 6.5 Medium

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

CVEID: CVE-2020-24502

Description: Improper input validation in some Intel® Ethernet E810 Adapter drivers for Linux before version 1.0.4 and before version 1.4.29.0 for Windows*, may allow an authenticated user to potentially enable a denial of service via local access.

CVSS Base Score: 3.8 Low

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L

CVEID: CVE-2020-24503

Description: Insufficient access control in some Intel® Ethernet E810 Adapter drivers for Linux before version 1.0.4 may allow an authenticated user to potentially enable information disclosure via local access.

CVSS Base Score: 3.3 Low

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Affected Products:

Intel® Ethernet E810 Adapter drivers for Linux before version 1.0.4.

Intel® Ethernet E810 Adapter drivers for Windows* before version 1.4.29.0.

Recommendations:

Intel recommends updating the Intel® Ethernet E810 Adapter drivers for Linux to version 1.0.4 or later and version 1.4.29.0 or later for Windows*.

Updates are available for download at this location:

<https://downloadcenter.intel.com/product/184846/Intel-Ethernet-Network-Adapter-E810-Series&gt;

Acknowledgements:

These issues were found internally by Intel employees.

Intel, and nearly the entire technology industry, follows a disclosure practice called Coordinated Disclosure, under which a cybersecurity vulnerability is generally publicly disclosed only after mitigations are available.

Related

f5 1
oraclelinux 3
prion 3
cve 3
ubuntucve 3
redhatcve 3
nessus 13
veracode 3
debiancve 1
almalinux 1
redhat 4
osv 1
openvas 4
suse 2
avleonov 1
f5
f5
K24920320 : Intel Ethernet Adapter Driver vulnerabilities CVE-2020-24502, CVE-2020-24503 and CVE-2020-24504
2021-03-01 00:00:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2022-05-10 00:00:00
Unbreakable Enterprise kernel-container security update
2022-05-10 00:00:00
kernel security, bug fix, and enhancement update
2021-11-16 00:00:00
prion
prion
Improper access control
2021-02-17 14:15:00
Input validation
2021-02-17 14:15:00
Design/Logic Flaw
2021-02-17 14:15:00
cve
cve
CVE-2020-24503
2021-02-17 14:15:00
CVE-2020-24502
2021-02-17 14:15:00
CVE-2020-24504
2021-02-17 14:15:00
ubuntucve
ubuntucve
CVE-2020-24503
2021-02-17 00:00:00
CVE-2020-24504
2021-02-17 00:00:00
CVE-2020-24502
2021-02-17 00:00:00
redhatcve
redhatcve
CVE-2020-24503
2021-02-18 19:13:34
CVE-2020-24502
2021-02-18 19:13:33
CVE-2020-24504
2021-02-18 19:13:45
nessus
nessus
Oracle Linux 8 : Unbreakable Enterprise kernel-container (ELSA-2022-9368)
2022-05-10 00:00:00
Oracle Linux 8 : Unbreakable Enterprise kernel (ELSA-2022-9365)
2022-05-10 00:00:00
Oracle Linux 8 : kernel (ELSA-2021-4356)
2021-11-17 00:00:00
veracode
veracode
Information Disclosure
2021-11-17 22:36:37
Denial Of Service (DoS)
2021-11-17 22:36:29
Denial Of Service (DoS)
2021-11-17 22:36:42
debiancve
debiancve
CVE-2020-24504
2021-02-17 14:15:00
almalinux
almalinux
Moderate: kernel security, bug fix, and enhancement update
2021-11-09 09:08:02
redhat
redhat
(RHSA-2021:4140) Moderate: kernel-rt security and bug fix update
2021-11-09 08:21:02
(RHSA-2021:4356) Moderate: kernel security, bug fix, and enhancement update
2021-11-09 09:08:02
(RHSA-2021:5137) Moderate: Openshift Logging Security Release (5.0.10)
2021-12-14 21:31:08
osv
osv
Moderate: kernel security, bug fix, and enhancement update
2021-11-09 09:08:02
openvas
openvas
openSUSE: Security Advisory for the (openSUSE-SU-2022:0131-1)
2022-02-08 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:0131-1)
2022-01-20 00:00:00
openSUSE: Security Advisory for the (openSUSE-SU-2022:0056-1)
2022-02-08 00:00:00
suse
suse
Security update for the Linux Kernel (important)
2022-05-07 00:00:00
Security update for the Linux Kernel (important)
2022-03-01 00:00:00
avleonov
avleonov
Scanvus now supports Vulners and Vulns.io VM Linux vulnerability detection APIs
2022-12-30 18:03:13
JSON
Related for INTEL:INTEL-SA-00462
f51oraclelinux3prion3cve3ubuntucve3redhatcve3nessus13veracode3debiancve1almalinux1redhat4osv1openvas4suse2avleonov1